when performing ECDSA selftest.

memory callbacks.

Rebuild all FIPS error codes to clean out old obsolete codes.

from DSA copy q across and if q present generate DH key in the
correct range.

pairwise consistency test interfering with the test.

Set FIPS RAND_METHOD at same time as OpenSSL RAND_METHOD.

now use an internal RAND_METHOD. All dependencies to OpenSSL standard
PRNG are now removed: it is the applications resposibility to setup
the FIPS PRNG and initalise it.

Initial OpenSSL RAND_init_fips() function that will setup the DRBG
for the "FIPS capable OpenSSL".

to test a "stuck" DRBG.

in OPENSSL_init().

ensure OPENSSL_init() is always linked into an application.

used to set up any appropriate functions such as FIPS callbacks without
requiring an explicit application call.

Submitted by Steven M. Schweda <sms@antinode.info>

different options:
"64"		The build system will choose /POINTER_SIZE=64=ARGV if
		the compiler supports it, otherwise /POINTER_SIZE=64.
"64="		The build system will force /POINTER_SIZE=64.
"64=ARGV"	The build system will force /POINTER_SIZE=64=ARGV.

  Have EC_NISTP224_64_GCC_128 treated like any algorithm, and have
  disabled by default.  If we don't do it this way, it screws up
  libeay.num.
* util/libeay.num: make update

* fips/cmac/*: Implement the basis for FIPS CMAC, using FIPS HMAC as
  an example.
* crypto/cmac/cmac.c: Enable the FIPS API.  Change to use M_EVP macros
  where possible.
* crypto/evp/evp.h: (some of the macros get added with this change)
* fips/fips.h, fips/utl/fips_enc.c: Add a few needed functions and use
  macros to have cmac.c use these functions.
* Makefile.org, fips/Makefile, fips/fips.c: Hook it in.

This meant alarger renumbering in util/libeay.num due to symbols
appearing in 1.0.0-stable and 1.0.1-stable.  However, since there's
been no release on this branch yet, it should be harmless.

include directory, as other parts (notably, EVP) seem to need it.

submitted by Steven M. Schweda <sms@antinode.info>